OpManager: A single console to manage your complete IT infrastructure. Click here for a 30-day free trial.
Welcome Guest | Sign In
ECommerceTimes.com
Google's Android Permissions Get Granular
June 4, 2015
Google appears to be heeding warnings of security experts who say Android users need better control over what apps do with information from their phones. At I/O, its worldwide shindig for developers held last week, the company announced that the next version of its mobile operating system, Android M, would take a more granular approach to permissions for data requested by apps.
Google Creates One-Stop Privacy and Security Shop
June 2, 2015
Google has rolled out "My Account," a hub that lets users manage their Google settings, along with a new site that answers questions about its privacy and security practices. In addition to letting users manage their password and account-access settings, My Account allows them to review their security settings and activity. My Account also lets users manage personal information about themselves.
Feds' Photobucket Strategy Could Hobble White Hats
June 2, 2015
There's a new twist in the way feds are seeking to penalize bad actors for making and distributing software used in crimes, suggest recent arrests by Justice Department and FBI officials. "There's a more concerted campaign to go after go after those folks who are distributing in the underground," said Tom Kellermann, chief cybersecurity officer at Trend Micro.
FBI to Dig Into IRS Data Breach Debacle
May 29, 2015
The United States Federal Bureau of Investigation is looking into a hack of the U.S. Internal Revenue Service that led to personal data being stolen from at least 100,000 taxpayers' accounts of the 200,000 that were hit. The hackers got the data by accessing the Get Transcript application, which lets taxpayers download data they filed with the service, the IRS announced Tuesday.
No Wrongdoing at NCIS, Says Defense Watchdog
May 28, 2015
The U.S. Department of Defense's Inspector General has rejected allegations that the Naval Criminal Investigative Service engaged in questionable domestic intelligence activity. The finding concluded a DoD IG probe spurred by allegations that NCIS was making available to military intelligence agencies its Law Enforcement Information Exchange, a database of 506.3 million law enforcement records.
Hush! Everybody's Listening!
May 27, 2015
Americans have been spied on by their own government for far longer than most realized, it turns out, and the United States National Security Agency's surveillance activities are just the tip of the iceberg. The FBI, which repeatedly has expressed dismay at Google and Apple securing their mobile OSes reportedly has become a major player in administering the NSA's warrantless surveillance program.
Hackers Launch Sneak Attacks on Microsoft's Live ID
May 26, 2015
Hackers have been infiltrating Microsoft services by sending emails to targets saying their Live IDs have been used to distribute unsolicited email, and their accounts will be blocked unless they click on an embedded link and fulfill new security requirements, Kaspersky researcher Andrey Kostin reported last week. The hackers take advantage of OAuth's Open Redirect feature.
Americans Hate Surveillance, Love Privacy: Report
May 21, 2015
Americans are deeply troubled by surveillance, data collection and the security of their data that's held by government agencies and private companies. The combined results of two Pew surveys suggest that the vast majority consider it important to be in control of their information. Eighty-eight percent of the respondents didn't want someone to watch or listen to them without their permission.
Venom Less Toxic Than Heartbleed
May 20, 2015
It was a little over a year ago that the Heartbleed bug shocked the Internet with its potential for mischief. Now another flaw in open source code has sent network administrators into damage control mode. The bug, called "Venom" for "Virtualized Environment Neglected Operations Manipulation," allows an intruder to jump out of a virtual machine and execute malicious code on its host.
The Rampant, Risky Babbling of Android Apps
May 19, 2015
Eurecom researchers recently developed an Android app that can monitor the network traffic of other apps to alert users of suspicious or malicious activity. With more than 1.2 million applications in the Google Play store, there are multiple programs for performing a particular task. That can make choosing an app a chore for users, they noted in a report released last month.
'Night Terrors' Could Turn Your Home Into a Hellscape
May 6, 2015
Gamers could get the chance to count themselves among the things that go bump in the night, if Novum Analytics' Night Terrors, an augmented reality game for mobile devices, meets its Indiegogo funding target. The story itself is rudimentary, but the gameplay takes place in relatively uncharted territory. The player is alone in the dark with a smartphone.
Report: Top Endpoint Security Packages Perfectly Foil Drive-By Attacks
May 5, 2015
Drive-by attacks on the Internet are a particularly pernicious form of online threat, especially for individual Web surfers. On the corporate level, though, a company with good endpoint protection software can foil the malicious practice. A drive-by occurs when an infected website automatically downloads malware onto a Net traveler's computer. Endpoint solutions can thwart those kinds of attacks.
Our Bodies, Our Security: Biometrics vs. Passwords
May 4, 2015
Text-based usernames and password pairs should be replaced with biometric credentialing, such as vein recognition and ingestible security tokens, suggests Johnathan LeBlanc, PayPal's global head of developer evangelism. Celebrities have been mortified, Sony Pictures Entertainment brought to its knees, and Home Depot sent scrambling to EuroPay Mastercard Visa's chip and pin earlier than mandated.
Steer Clear of iOS 8's Infinite Loop
May 1, 2015
A flaw in iOS 8 allows hackers essentially to crash apps that perform SSL communications whenever they like. Skycure reported the bug at the RSA security conference held last week, advising owners of iOS devices to upgrade to iOS 8.3. Apple this week confirmed that iOS 8.3 addresses the vulnerability. An attack would involve specially crafting an SSL certificate to regenerate a bug.
Apple Watch Could Be a Password Alternative
April 30, 2015
With password tolerance levels at an all time low, alternatives to the pesky and insecure authenticators are beginning to abound. One of those alternatives could be the Apple Watch. Even before Apple's latest gadget began shipping last week, MicroStrategy announced it was extending its Usher enterprise security solution to the Apple Watch. Usher on the Apple Watch allows it to act as a digital key.
House Passes Cybersecurity Bills Despite Privacy Fears
April 24, 2015
Two cybersecurity bills approved this week by the U.S. House of Representatives pose a threat to citizens' privacy, according to opponents of the measures. Both bills aim to improve sharing of cybersecurity information between businesses and government agencies. "'Information sharing' is a misnomer," said Gabriel Rottman, legislative counsel for the American Civil Liberties Union.
Government Surveillance: What to Do, What to Do?
April 21, 2015
The CIA has been trying to hack into iOS for years. British and American agencies reportedly have collaborated to create a map of the Internet and Web users. The United States National Security Agency has, together with the UK's GCHQ, reportedly stolen SIM card encryption keys from Gemalto. The FBI is frothing at the mouth over Google's and Apple's encryption of their mobile OSes.
Opening Windows Source Code Could Improve Security
April 16, 2015
Microsoft Technical Fellow Mark Russinovich raised a few eyebrows at ChefCon earlier this month, when he aired the possibility of Windows becoming an open source program. Sure, Microsoft's attitude toward the open source movement has mellowed over the years, but the prospect of the company rubbing elbows with the likes of Linux overloads the imagination.
Heartbleed Threat Won't Fade Away
April 9, 2015
This week marks the first anniversary of the Heartbleed vulnerability that caused a panic across the Internet last year. While the flaw appears to have faded from the recollections of Net denizens, it still poses danger at many sites in cyberspace. Heartbleed was discovered in April 2014 in an open source library, OpenSSL, used by the SSL protocol.
FTC Upgrades IT to Protect Consumer Privacy, Data Security
April 8, 2015
The FTC, which is at the forefront of regulating the impact of information technology on consumers, is bolstering its technical resource capabilities through a new Office of Technology Research and Investigation. The FTC is concerned about the failure of commercial entities to make adequate disclosures or to properly address data breaches and privacy issues.
The Futility of the Strong Password Solution
March 31, 2015
After experiencing a data breach, most companies take a number of measures to strengthen security, including advising users to change their passwords and to make them strong. Although it stopped short of confirming anything, Amazon-owned Twitch last week notified users that its network might have been hacked and that some user account information might have been exposed.
Compliance Mindset Can Lead to Epic Security Fail
March 30, 2015
The recent data breach at Premera Blue Cross -- in which the personal information of some 11 million customers was compromised -- raises questions about how effective government regulators are at ensuring that healthcare providers adequately protect their patients' data. There have been abundant warnings that compliance with government regulations alone would not be adequate.
Optimizing the Brick-and-Mortar Customer Experience
March 27, 2015
The retail industry has finally awakened to what customers always have known -- they don't distinguish too much between channels. Modern shoppers are happy to embrace the immediacy and experience of the physical store while also benefiting from the informed and personalized ease of shopping online. Retailers should translate the smartest online strategies into their in-store experience.
Amazon Fires 1st Shot in Storage Price War
March 27, 2015
Amazon on Thursday announced two new plans for unlimited storage in its Cloud Drive service. The Unlimited Photos plan includes 5 GB of additional storage for videos or other documents and files. It costs $11.99 per year. The Unlimited Everything option provides limitless cloud storage of photos, videos, movies, music and files for $59.99 per year. Both plans come with a free three-month trial.

See More Articles in Consumer Security Section >>
Facebook Twitter LinkedIn Google+ RSS
Do video cameras make the world safer?
Yes - People exercise more restraint because of them.
No - We just get to see more horrible things happen.
Maybe - They might deter some kinds of crime.
How